CVE-2026-43929— ssrfcheck: Server-Side Request Forgery (SSRF) and Incomplete List of Disallowed Inputs
Affected Version Matrix 1
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| felippe-regazio | ssrfcheck | <= 1.3.0 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-43929
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
ssrfcheck: Server-Side Request Forgery (SSRF) and Incomplete List of Disallowed Inputs
Source: NVD (National Vulnerability Database)
Vulnerability Description
ssrfcheck is a library that checks if a string contains a potential SSRF attack. In 1.3.0 and earlier, ssrfcheck fails to block Server-Side Request Forgery attacks when the target private IP address is encoded as an IPv4-mapped IPv6 address (e.g. http://[::ffff:127.0.0.1]/). The WHATWG URL parser built into Node.js silently normalizes the IPv4 notation inside the brackets to compressed hex form ([::ffff:7f00:1]) before the library's private-IP regex ever runs. The regex was written to match dot-notation only and therefore never matches any real input — all seven IANA private IPv4 ranges, including the AWS/GCP/Azure metadata address 169.254.169.254, are bypassed. Any application using isSSRFSafeURL() to guard HTTP requests made with user-supplied URLs is fully exposed to SSRF.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
不完整的黑名单
Source: NVD (National Vulnerability Database)
Vulnerability Title
SSRF Check 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
SSRF Check是Felippe Regazio个人开发者的一个检查字符串是否包含潜在的SSRF攻击。 SSRF Check 1.3.0及之前版本存在安全漏洞,该漏洞源于无法阻止IPv4映射IPv6地址格式的服务器端请求伪造攻击。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| felippe-regazio | ssrfcheck | <= 1.3.0 | - |
II. Public POCs for CVE-2026-43929
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-43929
请登录查看更多情报信息。
IV. Related Vulnerabilities
Same product: ssrfcheck
Same weakness: CWE-184
- CVE-2026-45037
Tabby: Unsafe protocol handler execution via terminal linkif - CVE-2026-42590
Gotenberg: ExifTool group-prefix syntax bypasses dangerous-t - CVE-2026-45006
OpenClaw < 2026.4.23 - Unsafe Config Mutation via Gateway To - CVE-2026-44993
OpenClaw < 2026.4.20 - Direct Message Misclassification in F - CVE-2026-44115
OpenClaw < 2026.4.22 - Shell Expansion Bypass in Unquoted He
V. Comments for CVE-2026-43929
No comments yet